EUVD-2013-3947

Malware in sbrugna...

Security Bulletin: Fix for BIRT Report Engine that is vulnerable due to nested jtidy.jar r938

Summary BIRT report engine bundled in IBM DevOps Model Architect v1.0 is vulnerable as it has a nested jtidy.jar r938. Vulnerability Details CVEID:CVE-2023-34623 DESCRIPTION: jtidy is vulnerable to a denial of service, caused by an out-of-bounds write error. By using a specially crafted object th...

SUSE CVE-2013-3004

Directory traversal vulnerability in BIRT-Report Viewer in IBM Tivoli Application Dependency Discovery Manager TADDM 7.1.x and 7.2.x before 7.2.1.5 allows remote authenticated users to read arbitrary files via unspecified vectors...

Security Bulletin: IBM Tivoli Application Dependency Discovery Manager (TADDM) can reveal TADDM database sensitive information (CVE-2014-6148)

Summary IBM Tivoli Application Dependency Discovery Manager contains a vulnerability that would allow an attacker to steal sensitive information to access TADDM database. Vulnerability Details CVE ID: CVE-2014-6148 DESCRIPTION: An attacker can use a specially-crafted URL to steal sensitive TADDM...

Security Bulletin: TADDM – Security improvement: BIRT-Report Viewer application vulnerable to directory traversal attack.

Summary TADDM security improvement deployed started from TADDM 7.2.1.5 and in TADDM 7.2.2 avoids vulnerability in embedded TADDM BIRT-Report Viewer application. Vulnerability Details CVE-2013-3004 Description Embedded in TADDM BIRT-Report Viewer application component was found to be vulnerable to...

Design/Logic Flaw

IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to obtain the installation path via vectors involving Birt report rendering. IBM X-Force ID: 111786...

CVE-2016-0345

IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to obtain the installation path via vectors involving Birt report rendering. IBM X-Force ID: 111786...

CVE-2016-0345

IBM TRIRIGA Application Platform 3.3/3.4/3.5 are affected by CVE-2016-0345, which allows remote authenticated users to disclose the installation path through Birt report rendering. Root cause is information disclosure via Birt report rendering paths. Remediations are to upgrade to fixed fix packs...

CVE-2016-0345

IBM TRIRIGA Application Platform 3.3 before 3.3.2.6, 3.4 before 3.4.2.3, and 3.5 before 3.5.0.1 allows remote authenticated users to obtain the installation path via vectors involving Birt report rendering. IBM X-Force ID: 111786...

CVE-2013-3004

Directory traversal vulnerability in BIRT-Report Viewer in IBM Tivoli Application Dependency Discovery Manager TADDM 7.1.x and 7.2.x before 7.2.1.5 allows remote authenticated users to read arbitrary files via unspecified vectors...

Directory traversal

Directory traversal vulnerability in BIRT-Report Viewer in IBM Tivoli Application Dependency Discovery Manager TADDM 7.1.x and 7.2.x before 7.2.1.5 allows remote authenticated users to read arbitrary files via unspecified vectors...

CVE-2013-3004

CVE-2013-3004 is a directory traversal vulnerability embedded in the IBM TADDM BIRT-Report Viewer component. The issue affects IBM TADDM 7.1.x and 7.2.x up to but before 7.2.1.5, where remote authenticated users could read arbitrary files on the server via unspecified vectors. The root cause is i...

CVE-2013-3004

Directory traversal vulnerability in BIRT-Report Viewer in IBM Tivoli Application Dependency Discovery Manager TADDM 7.1.x and 7.2.x before 7.2.1.5 allows remote authenticated users to read arbitrary files via unspecified vectors...

CVE-2013-4016

SQL injection vulnerability in IBM Maximo Asset Management 7.x before 7.1.1.7 LAFIX.20140319-0837, 7.1.1.11 before IFIX.20140323-0749, 7.1.1.12 before IFIX.20140321-1336, 7.5.x before 7.5.0.3 IFIX027, 7.5.0.4 before IFIX011, and 7.5.0.5 before IFIX006; SmartCloud Control Desk 7.x before 7.5.0.3 a...